Did you know that you can help your fellow community members by accepting solutions when a reply answers your question Accepted solutions are a super-helpful resource in the community, and we want to make sure our members understand how this feature
...
Just noticed a section of he help file for PANOS 5 which mentions a virtual firewall series from Palo Alto. Sure am interested in some more info....
Bob
Hi, I noticed my PAN is blocking connections from my client computers to the yahoo toolbar over port 443. After looking around in the database I noticed that it's only looking for this app to use port 80. Is there a way for me to add port 443 to this
...
Hello,
I encounter a problem using multiple netflow profiles on our PA-500 running PAN-OS 4.1.8
I have defined 3 different neflow profiles, each refers to a specific port on the same host.
Each profile is assigned to exactly one physical layser 3 interf
...
Hey all,
So, we have a need to block everyone but a small AD group access to a couple pages. Now, we don't want to just "deny" them in the rule (we have a comfort page that promps them they are blocked and allows them to request access) - I don't wan
...
When you configure a PA device to be managed by Panorama the first thing that (when you login through web-gui directly to the managed device) goes away is the contents of running-config.xml regarding address objects and security policies.
These settin
...
We have some outgoing UDP traffic that shows up in the traffic log with "insufficient-data" in the application field. The problem is that this traffic is being allowed through the firewall because it's being matched to a rule that allows FTP traffic
...
When upgrading from PAN-OS 4.0.9 to 4.1.7, some of traffic logs are not converted from the old logs.
It seems like the logs of about one hour before upgrading are unavailable. I am using PA-2050 and PA-5020.
Hi,
When we use to authenticate users through AD, we configure LDAP profile and in Authentication profile tab.
We write "sAMAccountname" for attribute at this window.We want to change this attribute and we want users not to log in with just username; W
...
Does anyone know if a customer owns a Panorama 25 device license and wants to add device #26, will it not allow them to add the 26th device or will it?
Thx
Hi,
We have defined vulnerability group which consists of AV, Anti-Spyware and Vulnerability profile. The vulnerability profile is configured to block critical events and alert on high and med. I have a need to except few hosts which are alerting for
...
I have two 2050's in an HA pair A/P on 4.1.7. I have a BGP setup with 100Mbps on one link and 250Mbps on another, and Gb to the LAN and DMZ. I have transferred just over 3G through the PA in the last 60 minutes.
When I turn on inspection (Antiviru
...
I am using SSL decryption for all outbound traffic. Prior to the decryption rule I have a rule to attempt to exclude iTunes and App Store traffic from decryption. The rule seems to be working, but the App Store fails with "NSURLErrorDomain error -10
...
Hi,
Is it possible to view AV and Threat version running on all devices under Panorama on one page? Panorama -> Managed Devices shows IP address, serial number etc. I would like to know if the similar option is available for AV and threat versions.
Hello,
I think it's an easy question, but I can't solve it.
This is the situation.
We have two routers.
Router 1 (bintec RT1202) has two ethernet interfaces with different subnets sub1 (172.16.10.0/24), sub2 (172.16.20.0/24).
Router 2 is our palo alto PA
...
We have a strange problem on some of our PA agents on our domain controllers;
in our PA we receive logging from some DC's with the next message:
ldap cfg RED-DC3 failed to connect to server <ip-address server>, source: <ip PA>: Invalid credentials
the s
...
TomYoung
on:
Ownership & Support Transfer?
reaper
on:
Networking
